Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 196
  • Last Modified:

IIS home page Intranet asking for credentials

I have a window 2008 IIS server.  We have our intranet on this - for what ever reason my home page is asking users to log in?  I don't want this but I'm not sure what is causing this.  I have the suthentication set to anonymous, asp.net and basic authentication.  For the Anonymous user identity is has the group oldservername\IUSR_Oldservername.  The new server as a different name is this my issue or Is there something I'm missing?
0
WellingtonIS
Asked:
WellingtonIS
  • 3
  • 2
  • 2
  • +1
1 Solution
 
Pravin AsarCommented:
For some reason, you have IWA enabled for the site directory

http://support.microsoft.com/kb/837139

Is your new server on different domain name ? server name does not matter
0
 
becraigCommented:
okie so it seems like you migrated from one server to another, since you are using an account for anonymous that is not valid on the new server.

There should be a local account created on the new server similar to:
IUSR
More details on how this works in later versions of IIS
http://www.iis.net/learn/get-started/planning-for-security/understanding-built-in-user-and-group-accounts-in-iis

You can just identify the anonymous identity built into your version of windows and change the anonymous account to match this, using the instructions below:
http://technet.microsoft.com/en-us/library/cc770966%28v=ws.10%29.aspx
0
 
Pravin AsarCommented:
New installation of IIS, should create appropriate user for Anonymous  access.

I think you copied the directory structure from old machine to new as admin and this newly copied directory structure may have appropriate access.
0
Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

 
becraigCommented:
If you read the post you will see the author states:

For the Anonymous user identity is has the group oldservername\IUSR_Oldservername.


Which is clearly not accurate since that naming convention has been replaced with later versions of ISS>
0
 
David Johnson, CD, MVPOwnerCommented:
remove the basic authentication and asp authentication unless you want users to login
0
 
WellingtonISAuthor Commented:
You are correct I migrated the box - I guess I need to create a service account with full control to the site then add this to the IIS_IUSRS group?  Or would it be best to use Application pool identity?
0
 
WellingtonISAuthor Commented:
I tried Application Pool idenity and so far that's working - it's hasn't asked for credientals since.
0
 
WellingtonISAuthor Commented:
I wound up using application pool and it's working - thanks for the help
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

  • 3
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now